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Amendments To Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the application: 
Listing of Claims: 
Claims 1-17 (cancelled). 

18. (currently amended) An online card present transaction method comprising the steps of: 
receiving, at a host website, an HTTP request from a brows e r client computer of a user, said 

request having been redirected from a website of a merchant to said host website; 

interrogating said client computer for the presence of an authentic ation device; 

sending said user a challenge string when said client computer includes an authentication 

device ; 

authenticating said user by receiving authentication information from said user, wherein said 
authentication information corresponds to a transaction account of said user, 

generating a secondary transaction account number, wherein said secondary transaction 
account number is valid for a single purchase transaction; 

associating said secondary transaction account number with said transaction account of said 

user; 

establishing an authenticated communication channel via an authentication process between 
a host system and said merchant; and 

communicating said secondary transaction account number over said authenticated 
communication channel to said merchant, wherein said merchant submits a payment request based 
on said secondary transaction account number. 

19. (currently amended) The method of claim 1 8, wherein said authentication process comprises 
the steps of: 

embedding an encrypted host system signature in said b r ows e r client computer of said user; 

and 

redirecting $a*4 a browser of said client computer user to said merchant, causing said 
merchant to authenticate said host system by decrypting said host system signature. 

20. (previously presented) The method of claim 1 8, wherein said authentication process 
comprises the steps of: 

communicating a token to said merchant over a first communication channel; 
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receiving a communication from said merchant over a second communication channel 
requesting said host system to confirm issuance of said token; and 

confirming to said merchant that said host system issued said token, 

21 , (original) The method of claim 18, further comprising the steps of prompting said user to 
insert a smart card into a smart card reader and to enter a personal identification number. 

22. (currently amended) The method of claim 1 8, wherein said authentication information 
comprises at least one of: a signed challenge string and a digital certificate. 

23. (currently amended) An online-card-present transaction method comprising the steps of: 
communicating with a user over a distributed network; 

rocogniain g-e interrogating a computer system for the presence of an authentication device 
on a compute r syst e m of a user ; 

redirecting said user to a host system website when said client compu ter includes said 
authentication device , causing said host system to authenticate said user based on data extracted 
from a transaction instrument by said authentication device; 

generating a secondary transaction account number, wherein said secondary transaction 
account number is valid for a single purchase transaction; 

associating said secondary transaction account number with an account of said user; 

establishing an authenticated communication channel with said host system; 

communicating said secondary transaction account number over said authenticated 
communication channel to said user, wherein said user submits a payment request based on said 
secondary transaction account number; and, 

receiving account information including said secondary transaction account number from 
said host system over said authenticated communication channel, wherein said account information 
and said secondary transaction account number facilitates completion of a transaction between said 
user and a merchant. 

24, (previously presented) The method of claim 23, wherein said step of generating said 
secondary transaction account number comprises the steps of: 

receiving an encrypted host system signature; and 

decrypting said encrypted host system signature to determine that said account information 
originated with said host system. 
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25. (original) The method of claim 23, said establishing an authenticated communication 
channel step further comprising the steps of: 

receiving a host system token over a first communication channel, wherein said token 
identifies said host system; and 

communicating to said host system over a second communication channel to confirm that 
said token was issued by said host system. 
Claims 26-34 (cancelled). 

35. (currently amended) An online card-present transaction miethod, comprising the steps of: 
establishing an authenticated communication channel; 

receiving from a merchant computer over said authenticated communication channel, a user 
request to facilitate a transaction with said a merchant; 

Interrogating said merchant computer for the presence of an authentication device: 

communicating to said merchant computer a challenge string to facilitate a user 
authentication process when said merchant computer includes an authentication device: 

retrieving from said merchant computer at least one of: a signed challenge string and a 
digital certificate originating from a user, wherein said user is authenticated by comparing said at 
least one of: said signed challenge string and said digital certificate to data corresponding to said 
user : 

retrieving a primary transaction account number associated with said digital certificate; 

generating a secondary transaction account number, wherein said secondary transaction 
account number is valid for a single purchase transaction; 

associating said secondary transaction account number with said primary transaction 
account number; and 

providing said secondary transaction account number to said merchant computer, wherein 
said merchant computer submits a payment request based on said secondary transaction account 
number, 

36. (currently amended) The method of claim 35, further comprising causing said user to insert 
a smart card into said authentication device q amort card - reader and input a personal identification 
numbe r, wherein said authentication device comprises a smart card reader . 

37. (currently amended) The method of claim 35, further comprising the steps of: 
receiving said secondary transaction account number from said merchant computer as part 
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of a settlement process; and, 

applying a charge associated with said settlement process to a transaction account of said 
user associated with said secondary account transaction number. 
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